Saturday, April 20, 2013

CIAOPS Podcast–Episode 50

The CIAOPS podcast has now reached a milestone, 50 episodes! Who would have ever thought? And for such a special occasion we need to have a special guest and we have, SBS Diva Susan Bradley joins us again. Susan speaks about the challenges of compliance with technology and especially in the new world of cloud computing.http://ciaops.podbean.com/2013/04/16/episode-50-susan-bradley/You can support this podcast via http://donation.ciaops.comDon't forget all the other previous 49 podcasts at http://ciaops.podbean.com and appreciate a like over at http://www.facebook.com/n2kpodcast.Remember if you want to be a guest please contact me (director@ciaops.com).Show notes:http://office.microsoft.com/en-us/business/office-365-security-and-privacy-verified-by-a-third-party-FX103089231.aspxhttp://certification.comptia.org/getCertified/certifications/security.aspxhttps://www.isc2.org/cissp/default.aspxhttp://www.guidancesoftware.com/computer-forensics-training-courses.htmhttp://www.rand.org/pubs/technical_reports/TR933.htmlhttps://cloudsecurityalliance.org/https://cloudsecurityalliance.org/topthreats/csathreats.v1.0.pdfhttps://downloads.cloudsecurityalliance.org/initiatives/top_threats/The_Notorious_Nine_Cloud_Computing_Top_Threats_in_2013.pdfCloud Computing Risk Assessmenthttps://www.enisa.europa.eu/activities/risk-management/files/deliverables/cloud-computing-risk-assessmentCloud Computing Information Assurance Framework https://www.enisa.europa.eu/activities/risk-management/files/deliverables/cloud-computing-information-assurance-frameworkProcure Secure: A guide to monitoring of security service levels in cloud contracts https://www.enisa.europa.eu/activities/Resilience-and-CIIP/cloud-computing/procure-secure-a-guide-to-monitoring-of-security-service-levels-in-cloud-contractsJust to add that ENISA (the European Network and Information Security Agency) has some excellent material for free;Cloud Computing Risk Assessmenthttps://www.enisa.europa.eu/activities/risk-management/files/deliverables/cloud-computing-risk-assessmentCloud Computing Information Assurance Frameworkhttps://www.enisa.europa.eu/activities/risk-management/files/deliverables/cloud-computing-information-assurance-frameworkProcure Secure: A guide to monitoring of security service levels in cloud contractshttps://www.enisa.europa.eu/activities/Resilience-and-CIIP/cloud-computing/procure-secure-a-guide-to-monitoring-of-security-service-levels-in-cloud-contractsALSO, RAND did a decent cloud security / trust overview ...http://www.rand.org/pubs/technical_reports/TR933.htmlAND As these guys are good too, great organization... recent papers on top security threats..https://cloudsecurityalliance.org/https://cloudsecurityalliance.org/topthreats/csathreats.v1.0.pdfhttps://downloads.cloudsecurityalliance.org/initiatives/top_threats/The_Notorious_Nine_Cloud_Computing_Top_Threats_in_2013.pdfhttp://www.verizonenterprise.com/DBIR/2012/http://governmentcio.com/content/going-all-cloud-computing